$ rpki-client -vvf rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/D756DF180BF411ECB17CCF3AC4F9AE02.roa File: D756DF180BF411ECB17CCF3AC4F9AE02.roa (raw, json) Hash identifier: 43Nju/XszXh56R9pD+iORh2PcjoZPi63i3gmfAzFFxk= Subject key identifier: 64:3E:3E:0A:3A:B8:DB:6B:B2:2C:7A:A8:67:17:4F:F3:1D:CA:21:20 Certificate issuer: /CN=A912C72C/serialNumber=58B4DF8E4757CAFDE5462F4A1AF870FE2144DC5B Certificate serial: 0562 Authority key identifier: 58:B4:DF:8E:47:57:CA:FD:E5:46:2F:4A:1A:F8:70:FE:21:44:DC:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/D756DF180BF411ECB17CCF3AC4F9AE02.roa Signing time: Thu 10 Oct 2024 09:30:18 +0000 ROA not before: Thu 10 Oct 2024 09:30:18 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 12189 IP address blocks: 2401:bc40::/32 maxlen: 32 2401:bc40::/35 maxlen: 35 2401:bc40:100::/40 maxlen: 40 2401:bc40:300::/40 maxlen: 40 2401:bc40:500::/40 maxlen: 40 2401:bc40:6000::/35 maxlen: 35 2401:bc40:a000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.crl rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1378 (0x562) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C72C/serialNumber=58B4DF8E4757CAFDE5462F4A1AF870FE2144DC5B Validity Not Before: Oct 10 09:30:18 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=67079ea9-b6bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:f1:4b:ce:d1:8c:47:4d:b8:60:52:69:4b:31: c4:33:62:f7:e4:52:bc:9c:6b:bc:0b:ed:9d:34:ac: 76:d1:d4:dc:93:4c:66:e1:e3:67:c3:8d:b8:bb:5f: b4:c4:d4:c6:3e:8e:48:f3:61:bc:a2:fa:ee:75:86: e6:f0:3a:2c:19:3e:4b:82:bf:04:15:2f:bf:8c:a0: 02:9c:f1:bd:86:0e:c9:e5:88:05:20:2d:73:da:c8: 28:01:85:19:96:3c:c9:b1:ce:8f:ac:2c:81:f5:19: fa:37:93:a3:2b:46:dd:8a:1a:4d:63:ca:b4:03:ec: e5:71:94:0b:6e:6b:ca:2f:ee:f4:ef:43:1c:0f:8e: f8:63:b7:eb:51:30:f4:da:d3:62:88:fe:43:fd:54: 63:5d:e8:be:23:59:61:38:d5:22:eb:37:72:7f:47: 01:30:20:63:67:a1:94:c7:0b:77:21:64:95:2d:46: f3:93:35:ab:43:2d:df:6c:bf:a8:3d:37:5c:a1:73: 00:3c:be:c2:84:5f:a3:67:cd:55:0b:6f:61:54:a8: dc:50:3c:1e:b2:cc:db:e9:22:3b:60:5a:0c:c3:5e: 53:8b:5e:2a:94:18:09:6f:92:2f:36:ae:66:77:6f: f7:41:d6:42:d3:84:a3:71:e0:5e:0f:bb:3f:9e:92: a0:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:3E:3E:0A:3A:B8:DB:6B:B2:2C:7A:A8:67:17:4F:F3:1D:CA:21:20 X509v3 Authority Key Identifier: keyid:58:B4:DF:8E:47:57:CA:FD:E5:46:2F:4A:1A:F8:70:FE:21:44:DC:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/D756DF180BF411ECB17CCF3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:bc40::/32 Signature Algorithm: sha256WithRSAEncryption 34:12:1b:ee:b4:f8:7c:c7:1d:66:82:c0:b7:7c:b1:b7:ed:bc: 16:27:70:08:6a:a7:df:81:45:33:41:39:54:90:f6:8d:29:eb: 5b:a7:3f:85:f7:0d:ca:82:66:81:12:65:24:e9:e7:49:3c:d9: 17:58:69:58:21:44:1e:e2:71:fc:1a:ed:65:99:62:e9:1b:85: cc:7d:51:69:dd:fa:90:33:db:bc:8c:74:28:e3:ef:b7:b9:ab: e4:4b:de:b6:5b:4c:14:f7:c1:19:4f:47:7c:90:61:96:cf:52: 5e:99:f4:66:44:58:72:e1:a8:ba:94:75:e3:5b:b7:69:6c:1d: de:26:e6:47:d6:ca:9d:13:81:79:92:4a:00:45:81:ec:66:7e: 67:2d:96:e0:ef:1c:83:bd:ed:6c:99:4d:58:4f:33:06:bd:a1: f5:ad:3b:18:29:f7:45:e9:41:bf:fa:cc:cd:b6:e0:05:e9:16: 2e:5a:f8:38:50:41:d1:d6:2a:58:a0:29:7b:46:4f:49:88:d2: cf:7c:f2:f9:fa:09:11:99:99:8a:22:8c:fd:84:80:8c:3f:73: 45:48:48:27:9a:05:b5:2c:fe:c4:2d:77:99:e7:81:6e:ef:45: 5e:75:40:29:59:ac:60:40:c5:20:b5:ac:e6:e7:7e:a3:cc:66: 55:26:a2:71 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICBWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM3MkMxMTAvBgNVBAUTKDU4QjRERjhFNDc1N0NBRkRFNTQ2MkY0QTFBRjg3MEZF MjE0NERDNUIwHhcNMjQxMDEwMDkzMDE4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA3OWVhOS1iNmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4vFLztGMR024YFJpSzHEM2L35FK8nGu8C+2dNKx20dTck0xm4eNnw424u1+0 xNTGPo5I82G8ovrudYbm8DosGT5Lgr8EFS+/jKACnPG9hg7J5YgFIC1z2sgoAYUZ ljzJsc6PrCyB9Rn6N5OjK0bdihpNY8q0A+zlcZQLbmvKL+7070McD474Y7frUTD0 2tNiiP5D/VRjXei+I1lhONUi6zdyf0cBMCBjZ6GUxwt3IWSVLUbzkzWrQy3fbL+o PTdcoXMAPL7ChF+jZ81VC29hVKjcUDwesszb6SI7YFoMw15Ti14qlBgJb5IvNq5m d2/3QdZC04SjceBeD7s/npKgQQIDAQABo4ICljCCApIwHQYDVR0OBBYEFGQ+Pgo6 uNtrsix6qGcXT/MdyiEgMB8GA1UdIwQYMBaAFFi0345HV8r95UYvShr4cP4hRNxb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzcyQy84RUM2MTQwRUMz QUExMUVCODcwRUE5MUNDNEY5QUUwMi9XTFRmamtkWHl2M2xSaTlLR3Zod19pRkUz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dMVGZqa2RYeXYzbFJpOUtHdmh3X2lGRTNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkM3MkMvOEVDNjE0MEVDM0FBMTFFQjg3MEVBOTFDQzRGOUFFMDIvRDc1NkRGMTgw QkY0MTFFQ0IxN0NDRjNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAbxAMA0GCSqGSIb3DQEBCwUAA4IBAQA0EhvutPh8xx1m gsC3fLG37bwWJ3AIaqffgUUzQTlUkPaNKetbpz+F9w3KgmaBEmUk6edJPNkXWGlY IUQe4nH8Gu1lmWLpG4XMfVFp3fqQM9u8jHQo4++3uavkS962W0wU98EZT0d8kGGW z1JemfRmRFhy4ai6lHXjW7dpbB3eJuZH1sqdE4F5kkoARYHsZn5nLZbg7xyDve1s mU1YTzMGvaH1rTsYKfdF6UG/+szNtuAF6RYuWvg4UEHR1ipYoCl7Rk9JiNLPfPL5 +gkRmZmKIoz9hICMP3NFSEgnmgW1LP7ELXeZ54Fu70VedUApWaxgQMUgtazm536j zGZVJqJx -----END CERTIFICATE-----Generated at Sun Nov 24 23:58:44 2024 by rpki-client on console-fra.rpki-client.org